Acunetix: The Best in Class Vulnerability Scanner for Linux

The server operating system of choice for top businesses including Facebook, Twitter, and Google, Linux is also the desktop OS of choice for many information security analysts and penetration testers due to its security, reliability, and configurability. Many network security assessment tools already run on Linux. That includes open source vulnerability scanning and penetration testing tools like Metasploit, OpenVAS, Greenbone Security Assistant, and the Kali Linux distribution, as well as commercial network security scanners like Nessus and Nexpose.

But, network vulnerability tests and penetration testing are only part of the story. Businesses are becoming increasingly dependent on web applications. Real world attackers are looking for and exploiting web application vulnerabilities like SQL injection, cross-site scripting, and other OWASP top 10 vulnerabilities — so much so that according to the latest Verizon Data Breach Investigation Report, web application vulnerabilities were found to be the leading cause of breaches. Client data and trust are becoming increasingly dependent on web functionality and security.

Because of this, a comprehensive information security plan requires vulnerability management and scanning focused specifically on web applications. Until now, best-in-class commercial scanners have required teams to use a separate Windows host or virtual machine to run their web security scanner. But, now you can enjoy the advantages of Acunetix, as well as the reliability and cost savings of Linux.

Reliability and versatility

Acunetix Linux version gives you the same reliability and versatility you have come to trust.

Just like our Microsoft Windows version and our Online version, Acunetix features the exclusive DeepScan technology. The Linux version includes a new DeepScan Engine powered by Chromium to accurately map out and scan everything from traditional web applications to the newest JavaScript-dependent Single Page Applications (SPAs). Like all versions, it also gives you the advantage of AcuSensor technology, which verifies a wide range of high-severity vulnerabilities and guarantees a low rate of false positives in the scan results.

Now, you get all of the functionality of Acunetix, with all of the dependability of Linux. Linux is already the most popular operating system for critical business servers that need as close to 100% uptime as possible. That trusted platform can form the foundation of your web application scanning infrastructure, too.

Cost-effectiveness

With Acunetix on Linux, you can not only take advantage of best-in-class web application security scanning, but you can save money on software licensing and infrastructure costs. Since Linux is free and open source, your business no longer has to purchase Windows licenses for a web application scanner.

Furthermore, you have the flexibility of installing Acunetix to on-premises Linux desktops or servers, or on private cloud services such as Amazon AWS, Digital Ocean, Google Cloud, or any other provider that offers Linux instances.

Better resource allocation

Compared to the Microsoft Windows version, the Linux version of Acunetix uses fewer system resources to run the scan console and scan engine. With fewer system resources being used in the background, this leaves more available for the act of scanning web applications. For any business with a large web presence, this saves time in the vulnerability scanning process. The security team can proceed more quickly to reviewing scan results, prioritizing remediation tasks, and fixing critical security issues identified in the vulnerability assessment.

We use Acunetix as part of our Security in the SDLC and to test code in DEV and SIT before being promoted to Production.